Security Guide for Siebel Business Applications > Communications and Data Encryption > Configuring Data Encryption >

Configuring Business Component Encryption

This section describes how to use Siebel Tools to enable and disable encryption for business component fields.

For more information about performing some of the tasks described in this section, see Configuring Siebel Business Applications.

Siebel Systems provides the AES Encryptor and the RC2 Encryptor to allow you to encrypt data fields. To use the AES Encryptor, you need to obtain the Siebel Strong Encryption Pack. For more information, see About Siebel Strong Encryption Pack.

For more information about using either the AES Encryptor or the RC2 Encryptor to add encryption keys to the keyfile and change the keyfile password, see Configuring Data Encryption.

Setting Encryption User Properties

Application developers can encrypt fields in a business component by setting the encryption user properties described here. When encryption is turned on, data written to the field is encrypted and data read from the field is decrypted.

To turn on encryption for business component fields

1. Start Siebel Tools.
2. Select the business component that contains the field you want to encrypt.
3. Select the field you want to encrypt.

   For example, in the Quote business component, the Credit Card Number field has field user properties for encryption.

4. In the field user properties, set the following encryption values:

   Field User Property	Value	Description
   Encrypted	Y	Y indicates the field is encrypted. N indicates the field is not encrypted.
   Encrypt Service Name	AES Encryptor RC2 Encryptor	Sets the type of encryption to use for the field.
   Encrypt Key Field	KeyIndexField	Specify the field on the business component where the encryption key index is stored. For the Credit Card Number field in the Quote business component, this user property is set to Credit Card Number Key Index.
   Encrypt ReadOnly Field	CalculatedField	Specify a calculated field that determines whether the data in the encrypted field is read-only. Storing the data in read-only form may allow someone to recover it later. For example, for the Credit Card Number field in the Quote business component, this user property is set to the calculated field Credit Card Number - Read Only. The calculated value of Credit Card Number - Read Only is Y (TRUE) if encryption or decryption fails—the field data is read-only. The calculated value is N (FALSE) if encryption or decryption succeeds—the field data is editable. If you need to create an equivalent field for another business component, set it as calculated and do not specify a field value.

Table 4 shows some examples of Key Index Fields for business components.